Support User Manuals

Cisco Systems 12.2(35)SE Automobile Electronics User Manual

Open as PDF

of 26

15

Release Notes for the Cisco Catalyst Blade Switch 3040 for FSC, Cisco IOS Release 12.2(35)SE

OL-12212-01

Resolved Caveats

• CSCsg81334

If IEEE 802.1x critical authentication is not enabled and the RADIUS authentication server is

temporarily unavailable during a reauthentication, when the RADIUS server comes back up, MAC

authentication bypass (MAB) does not authenticate a previously authenticated client.

The workaround is to enter the shutdown interface conﬁguration command followed by the no

shutdown command on the port connected to the client. An alternative, to prevent the problem from

occurring, is to enable critical authentication by entering the dot1x critical {eapol | recovery delay

milliseconds} global conﬁguration command.

Resolved Caveats

This section describes the resolved caveats for this software release.

• CSCei63394

When an IEEE 802.1x restricted VLAN is configured on a port and a hub with multiple devices are

connected to that port, syslog messages are now generated.

This is not a supported configuration. Only one host should be connected to an IEEE 802.1x

restricted VLAN port.

• CSCsb11849

When the Control Plane Policing (CoPP) policy is configured to drop packets that have IP options,

packets with incorrectly created IP options are no longer ignored.

• CSCsb56438

An extra index no longer appears in the port table of the ciscoStpExtensions MIB.

• CSCsb74648

When a Cisco device is configured for Network Admission Control and the EAP over UDP port

number changes from its default value and then changes back with the eou default switch

configuration command, the port change now takes effect.

• CSCsb75245

When you configure a Cisco IP Phone to use Network Admission Control, the CDP packet is no

longer delayed, and the phone is no longer identified as an agentless host without an identity profile.

• CSCsb81283

MAC address notification traps now work when port security is enabled on the interface.

• CSCsb97854

When a source port for a SPAN session has IEEE 802.1x enabled, Extensible Authentication

Protocol over LAN (EAPOL) packets are now visible to the packet sniffing tool.

• CSCsc05371

When you configure a MAC address filter by entering the mac-address-table static vlan drop

global configuration command, IEEE 802.1X no longer authenticates supplicants using that address.

If a supplicant with that address is authenticated, its authorization is revoked.

• CSCsc13467

A switch no longer fails or displays illegal memory access messages during the SNMP Timer

process.

previous next